Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1VNQCuQBV5S1_AC4Jw5Mr-n_tqM.roa
File: 1VNQCuQBV5S1_AC4Jw5Mr-n_tqM.roa (raw, json)
Hash identifier: uJ+JntWMu/uTDywPyrlxy0Zc/HR4U13ceyCAuQhF8Pk=
Subject key identifier: D5:53:50:0A:E4:01:57:94:B5:FC:00:B8:27:0E:4C:AF:E9:FF:B6:A3
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A2770D481B69171651475B1C5C803A89E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1VNQCuQBV5S1_AC4Jw5Mr-n_tqM.roa
Signing time: Thu 24 Aug 2023 12:07:00 +0000
ROA not before: Thu 24 Aug 2023 12:07:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.227.144.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Aug 2023 18:42:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:70:d4:81:b6:91:71:65:14:75:b1:c5:c8:03:a8:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 24 12:07:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d553500ae4015794b5fc00b8270e4cafe9ffb6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:39:d3:83:8f:c0:95:ae:2d:d1:7d:3f:1b:
ec:e0:ca:55:2d:ef:4e:f5:26:9e:ac:8c:fc:67:e9:
9b:31:ab:24:b4:8c:38:50:e4:8b:d9:ee:05:ed:24:
55:10:6d:c1:24:39:c4:ae:b9:31:19:dc:a3:0c:fe:
b3:1d:a0:6a:3b:26:c7:0e:28:9d:c1:9e:db:68:21:
02:52:bf:f4:93:ec:1d:2e:1a:23:3a:17:39:28:ed:
64:da:44:2d:92:fa:96:20:73:db:94:1f:09:ae:76:
9e:58:e1:9b:20:b9:c8:78:00:d2:54:00:82:d4:74:
35:67:6d:88:31:6e:d0:6d:43:b3:a1:ca:4f:53:19:
9e:a6:18:9a:76:70:3b:83:ef:ab:ea:2a:9b:b0:f8:
0a:f8:df:d3:24:ab:2e:28:48:68:75:dc:53:b9:cb:
b1:0e:1c:8c:71:22:54:87:48:bd:af:58:7f:8c:9d:
fe:3f:4a:1e:e1:60:94:74:2a:37:31:9c:4a:8f:8d:
f9:05:7b:60:23:26:47:98:22:50:90:3a:45:26:cb:
08:95:23:9e:ab:b2:6a:a1:7c:0f:35:9f:55:6e:a1:
fd:28:0d:90:05:7d:4c:8f:65:d2:29:df:e4:ea:15:
20:b5:74:6e:4d:2d:b3:2a:d5:aa:f0:c3:38:ca:98:
fb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:53:50:0A:E4:01:57:94:B5:FC:00:B8:27:0E:4C:AF:E9:FF:B6:A3
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1VNQCuQBV5S1_AC4Jw5Mr-n_tqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.218.23.0/24
185.220.249.0-185.220.251.255
185.221.20.0/24
185.221.22.0/23
185.222.29.0-185.222.31.255
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.144.0/23
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:9d:be:fe:59:21:4d:2d:4a:3d:c6:be:1b:12:42:a3:4d:9a:
0f:54:70:b3:87:48:17:19:cc:6d:e5:5c:ed:2d:45:5c:db:c7:
41:03:d2:81:73:23:74:c9:65:b0:b2:7e:2e:17:31:e7:fa:03:
90:15:de:d3:46:16:62:0f:f0:aa:32:e4:fc:4a:69:e5:77:35:
c1:42:f7:09:52:13:fd:de:d8:71:3b:8f:55:4b:16:2d:bf:5f:
49:89:80:7e:99:a7:eb:b9:34:c8:ba:01:1e:ab:d1:83:64:2e:
4c:5c:b4:fb:cc:56:25:8d:05:bf:d1:b1:2c:ce:97:3a:f9:15:
dc:27:02:ec:e4:1b:b7:4b:46:a7:89:60:20:65:b2:14:03:9a:
c5:58:a8:a1:ba:5c:10:6b:b2:15:eb:52:6e:30:59:c9:5a:0e:
cc:f5:5e:89:51:b0:61:e1:76:31:bf:11:f2:cb:f8:c0:73:2c:
50:2f:bf:28:10:28:78:7a:a2:c7:7e:1a:d5:e1:0c:8d:2e:3d:
2b:b1:7d:3c:26:14:65:d2:d9:10:cc:6c:2b:f9:11:90:0a:e9:
57:b8:99:32:94:86:00:9a:9e:79:0a:5b:71:6d:4a:08:22:dd:
5a:1f:56:22:51:7c:a0:36:d3:1e:0b:8f:c9:27:d3:d5:b0:ff:
3c:67:75:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org